俄罗斯黑客利用BlackSanta恶意软件, 通过伪造的工作应用程序, 窃取数据并获得长期访问权限, Russian hackers use BlackSanta malware in phishing attacks on HR departments via fake job apps to steal data and gain long-term access.

Russian连结的网络罪犯正在使用一个新的恶意软件菌株, 名为BlackSanta(BlackSanta), 将人力资源部门作为攻击目标, Russian-linked cybercriminals are using a new malware strain called BlackSanta to target HR departments via phishing emails disguised as job applications. 恶意软件通过云层储存的假简历传送,躲藏在系统记忆中,使安全软件失效,从而逃避探测。 The malware, delivered through fake CVs on cloud storage, evades detection by hiding in system memory and disabling security software. 一旦进入内部,它就窃取敏感数据,进行侦察,并允许长期进入网络。 Once inside, it steals sensitive data, conducts reconnaissance, and enables long-term network access. 袭击利用了对人力资源工作流的信任和大量的工作流程,没有关于索要赎金要求的报告,建议把间谍活动作为首要目标。 The attack exploits the trust and high volume of HR workflows, with no ransom demands reported—suggesting espionage as the primary goal.